n-plus-one-prevention
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: CRITICALNO_CODE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): Automated scanners flagged 'orders.id' as a malicious URL. Analysis of the code confirms this string appears exclusively in the context of ORM column referencing (e.g.,
sequelize.col('orders.id')) and SQL JOIN syntax. It is not used as a URL, and no network requests are made to this or any other external domain. - [NO_CODE] (SAFE): The skill contains no executable scripts, shell commands, or configuration files that install software. It is purely instructional markdown with code templates for the AI to reference when generating or reviewing code.
- [PROMPT_INJECTION] (SAFE): The instructions are strictly limited to database optimization techniques. There are no patterns suggesting attempts to bypass safety filters, extract system prompts, or hijack agent behavior.
- [DATA_EXFILTRATION] (SAFE): The skill does not access sensitive local files or credentials. All code examples use generic placeholders like 'orders' and 'customers'.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata